.:[ packet storm ]:. - http://packetstormsecurity.org/

Section: .. / 0701-advisories /

Page 20 of 22
<< 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 >> Files 475 - 500 of 537

Currently sorted by: Last Modified Sort By: File Name, File Size

/// File Name:	glsa-200701-03.txt
Description:	Gentoo Linux Security Advisory GLSA 200701-03 - Georgi Guninski and David Bienvenu discovered buffer overflows in the processing of long Content-Type: and long non-ASCII MIME headers. Additionally, Frederik Reiss discovered a heap-based buffer overflow in the conversion of a CSS cursor. Different vulnerabilities involving memory corruption in the browser engine were also fixed. Mozilla Thunderbird also contains less severe vulnerabilities involving JavaScript and Java. Versions less than 1.5.0.9 are affected.
Homepage:	http://security.gentoo.org
File Size:	4093
Last Modified:	Jan 5 02:34:25 2007
MD5 Checksum:	9ac7abcd42771382de13026561f83eeb

/// File Name:	glsa-200701-02.txt
Description:	Gentoo Linux Security Advisory GLSA 200701-02 - An anonymous researcher found evidence of memory corruption in the way Mozilla Firefox handles certain types of SVG comment DOM nodes. Additionally, Frederik Reiss discovered a heap-based buffer overflow in the conversion of a CSS cursor. Other issues with memory corruption were also fixed. Mozilla Firefox also contains less severe vulnerabilities involving JavaScript and Java. Versions less than 1.5.0.9 are affected.
Homepage:	http://security.gentoo.org
File Size:	4278
Last Modified:	Jan 5 02:34:07 2007
MD5 Checksum:	343cd4595e649361925a05e2e28ff4ce

/// File Name:	USN-398-3.txt
Description:	Ubuntu Security Notice 398-3 - USN-398-1 fixed vulnerabilities in Firefox. Due to the updated version, a flaw was uncovered in the Firefox Themes bundle, which erroneously reported to be incompatible with the updated Firefox. This update fixes the problem. Various flaws have been reported in Firefox that allow an attacker to execute arbitrary code with user privileges by tricking the user into opening a malicious web page containing JavaScript or SVG.
Homepage:	http://security.ubuntu.com/
File Size:	1562
Related CVE(s):	CVE-2006-6497, CVE-2006-6498, CVE-2006-6499, CVE-2006-6501, CVE-2006-6502, CVE-2006-6503, CVE-2006-6504, CVE-2006-6506, CVE-2006-6507
Last Modified:	Jan 5 02:33:57 2007
MD5 Checksum:	c1a0488095d1b8b4ba2005f12142ee72

/// File Name:	DMA-2007-0104a.txt
Description:	A format string vulnerability in the handling of iPhoto XML feeds title field allows potential remote arbitrary code execution.
Author:	Kevin Finisterre
Homepage:	http://projects.info-pull.com/moab/index.html
Related Exploit:	MOAB-04-01-2007.rb.txt
File Size:	3512
Last Modified:	Jan 5 02:27:47 2007
MD5 Checksum:	570c431095408347cf525d4b07fccf05

/// File Name:	LS-20061102.pdf
Description:	LSsec has discovered a vulnerability in Business Objects Crystal Reports XI Professional, which could be exploited by an attacker in order to execute arbitrary code on an affected system. Exploitation requires that the attacker coerce the target user into opening a malicious .RPT file.
Homepage:	http://www.lssec.com/
Related Exploit:	LS-20061102.rar
File Size:	17597
Last Modified:	Jan 5 02:22:38 2007
MD5 Checksum:	fb382ee64fb9b1d4a0314fc038312ca6

/// File Name:	powarc964-en.txt
Description:	A vulnerability has been found in PowerArchiver version 9.64.02. When exploited, the vulnerability allows execution of arbitrary code when the user opens a malicious ISO file.
Author:	Tan Chew Keong
Homepage:	http://vuln.sg/
File Size:	510
Last Modified:	Jan 5 01:45:47 2007
MD5 Checksum:	5a61705acfe490a74bfd93f9726c6c01

/// File Name:	sa23537.txt
Description:	Secunia Security Advisory - A vulnerability has been reported in SPINE, which can be exploited by malicious people to conduct cross-site request forgery attacks.
Homepage:	http://secunia.com/advisories/23537/
File Size:	2644
Last Modified:	Jan 4 12:17:16 2007
MD5 Checksum:	57e95e2fd47745ec9b4b49dbd1f78bb5

/// File Name:	sa23484.txt
Description:	Secunia Security Advisory - A vulnerability has been reported in OvBB, which can be exploited by malicious people to conduct script insertion attacks.
Homepage:	http://secunia.com/advisories/23484/
File Size:	2385
Last Modified:	Jan 4 12:16:54 2007
MD5 Checksum:	b5f654ca72bfaad1d9437c529c415a23

/// File Name:	sa23556.txt
Description:	Secunia Security Advisory - Cisco has acknowledged a security issue in Cisco Clean Access, which can be exploited by malicious people to gain knowledge of sensitive information.
Homepage:	http://secunia.com/advisories/23556/
File Size:	2507
Last Modified:	Jan 4 12:16:54 2007
MD5 Checksum:	cb00ecd329e6049ad2b6dcbc03307f0f

/// File Name:	sa23559.txt
Description:	Secunia Security Advisory - Tan Chew Keong has reported a vulnerability in PowerArchiver, which can be exploited by malicious people to compromise a user's system.
Homepage:	http://secunia.com/advisories/23559/
File Size:	2430
Last Modified:	Jan 4 12:16:54 2007
MD5 Checksum:	cbe8aa985146dfff3c3ced33e1c1b975

/// File Name:	sa23590.txt
Description:	Secunia Security Advisory - DarkFig has discovered a vulnerability in Simple Web Content Management System, which can be exploited by malicious people to conduct SQL injection attacks.
Homepage:	http://secunia.com/advisories/23590/
File Size:	2490
Last Modified:	Jan 4 12:16:54 2007
MD5 Checksum:	4bf0f478874ddeaf0bb580c6954db01a

/// File Name:	sa23594.txt
Description:	Secunia Security Advisory - Aria-Security has reported a security issue in WineGlass, which can be exploited by malicious people to disclose sensitive information.
Homepage:	http://secunia.com/advisories/23594/
File Size:	2295
Last Modified:	Jan 4 12:16:54 2007
MD5 Checksum:	9a3cddcd96131f777c651e267d1efdcf

/// File Name:	sa23608.txt
Description:	Secunia Security Advisory - A vulnerability has been reported in OpenBSD, which can be exploited by malicious, local users to gain escalated privileges.
Homepage:	http://secunia.com/advisories/23608/
File Size:	2726
Last Modified:	Jan 4 12:16:54 2007
MD5 Checksum:	7e4a36617cb92a66830661b41bc5d73c

/// File Name:	sa23610.txt
Description:	Secunia Security Advisory - ajann has reported a vulnerability in E-SMART CART, which can be exploited by malicious people to conduct SQL injection attacks.
Homepage:	http://secunia.com/advisories/23610/
File Size:	2386
Last Modified:	Jan 4 12:16:54 2007
MD5 Checksum:	ba745d5ad222bc92bc180e67a7e3a17b

/// File Name:	sa23612.txt
Description:	Secunia Security Advisory - A vulnerability has been reported in OpenOffice, which potentially can be exploited by malicious people to compromise a user's system.
Homepage:	http://secunia.com/advisories/23612/
File Size:	2559
Last Modified:	Jan 4 12:16:54 2007
MD5 Checksum:	4455083b82c6aba32f2518495706f47b

/// File Name:	sa23616.txt
Description:	Secunia Security Advisory - Red Hat has issued an update for openoffice.org. This fixes a vulnerability, which potentially can be exploited by malicious people to compromise a user's system.
Homepage:	http://secunia.com/advisories/23616/
File Size:	2503
Last Modified:	Jan 4 12:16:54 2007
MD5 Checksum:	2e49975e739882585c4b50716a0d023c

/// File Name:	sa23617.txt
Description:	Secunia Security Advisory - Cisco has acknowledged a security issue in Cisco Clean Access, which can be exploited by malicious users to bypass certain security restrictions.
Homepage:	http://secunia.com/advisories/23617/
File Size:	2636
Last Modified:	Jan 4 12:16:54 2007
MD5 Checksum:	865859a9071db5e2762e4f64a463046c

/// File Name:	USN-398-2.txt
Description:	Ubuntu Security Notice 398-2 - USN-398-1 fixed vulnerabilities in Firefox 2.0. This update provides the corresponding updates for Firefox 1.5. Various flaws have been reported in Firefox that allow an attacker to execute arbitrary code with user privileges by tricking the user into opening a malicious web page containing JavaScript or SVG.
Homepage:	http://security.ubuntu.com/
File Size:	13234
Related CVE(s):	CVE-2006-6497, CVE-2006-6498, CVE-2006-6499, CVE-2006-6501, CVE-2006-6502, CVE-2006-6503, CVE-2006-6504, CVE-2006-6506, CVE-2006-6507
Last Modified:	Jan 4 02:35:54 2007
MD5 Checksum:	a34d22bfa58a248d75d301de58ea4ca3

/// File Name:	cisco-sa-20070103-CleanAccess.txt
Description:	Cisco Security Advisory - The Cisco Clean Access Manager (CAM) and Cisco Clean Access Server (CAS) suffer from an unchangeable shared secret vulnerability. Also, manual backups of the database ('snapshots') taken on the CAM are susceptible to brute force download attacks. A malicious user can guess the file name and download it without authentication. The file itself is not encrypted or otherwise protected.
Homepage:	http://www.cisco.com/warp/public/707/cisco-sa-20070103-CleanAccess.shtml
File Size:	12404
Last Modified:	Jan 4 02:34:40 2007
MD5 Checksum:	7f66a5ebe174302dc13434323da64b53

/// File Name:	perforce.txt
Description:	It appears that the Perforce client/server model is a bit broken. The client appears to give the server full control over the machine of the client. This,.. is not happiness.
Author:	Ben Bucksch
Homepage:	http://www.bucksch.org/
File Size:	3742
Last Modified:	Jan 4 00:35:32 2007
MD5 Checksum:	a6efd8cb99916801b6455b6fe779e3df

/// File Name:	glsa-200701-01.txt
Description:	Gentoo Linux Security Advisory GLSA 200701-01 - Tavis Ormandy of the Gentoo Linux Security Audit Team discovered that DenyHosts used an incomplete regular expression to parse failed login attempts. Versions less than 2.6 are affected.
Homepage:	http://security.gentoo.org
File Size:	2590
Last Modified:	Jan 3 22:06:16 2007
MD5 Checksum:	6c10235e685c078569658a91a167633b

/// File Name:	USN-399-1.txt
Description:	Ubuntu Security Notice 399-1 - A format string vulnerability was discovered in w3m. If a user were tricked into visiting an HTTPS URL protected by a specially crafted SSL certificate, an attacker could execute arbitrary code with user privileges.
Homepage:	http://security.ubuntu.com/
File Size:	6722
Last Modified:	Jan 3 22:05:50 2007
MD5 Checksum:	d3330a8eb70f1c734ff416f7b236bd8f

/// File Name:	USN-398-1.txt
Description:	Ubuntu Security Notice 398-1 - Various flaws have been reported in Firefox that allow an attacker to execute arbitrary code with user privileges by tricking the user into opening a malicious web page containing JavaScript or SVG.
Homepage:	http://security.ubuntu.com/
File Size:	8888
Related CVE(s):	CVE-2006-6497, CVE-2006-6498, CVE-2006-6499, CVE-2006-6501, CVE-2006-6502, CVE-2006-6503, CVE-2006-6504, CVE-2006-6506, CVE-2006-6507
Last Modified:	Jan 3 22:05:06 2007
MD5 Checksum:	4dffd69e8814434b871c781f67c0bb59

/// File Name:	winntcomp.txt
Description:	A critical security vulnerability has been found in the Windows NT Message compiler. Arbitrary code execution might be possible.
Author:	sapheal
File Size:	941
Last Modified:	Jan 3 21:53:42 2007
MD5 Checksum:	c0cbe312d8f92d18cef79225e95240e7

/// File Name:	sa21694.txt
Description:	Secunia Security Advisory - Secunia Research has discovered some vulnerabilities and a security issue in The Address Book, which can be exploited by malicious people to bypass certain security restrictions, conduct cross-site scripting, cross-site request forgery, script insertion, and SQL injection attacks, disclose sensitive information, and compromise a vulnerable system.
Homepage:	http://secunia.com/advisories/21694/
File Size:	5771
Last Modified:	Jan 3 18:45:45 2007
MD5 Checksum:	5792648af03bec5fdf5af10d57c7b84e

/// Last 10 Files

[ Last 20 | Last 50 | Last 100 ]

/// Last 10 Advisories

[ Last 20 | Last 50 | Last 100 ]

/// Last 10 Exploits

[ Last 20 | Last 50 | Last 100 ]

/// Last 10 Tools

[ Last 20 | Last 50 | Last 100 ]

/// Last 10 Misc

[ Last 20 | Last 50 | Last 100 ]